Author Karen Lamb once said, “A year from now, you will wish you had started today.” This quote—often used by IT security professionals—speaks to the importance of understanding your environment and evolving your thinking and actions as the world changes. When it comes to something as critical as cybersecurity, this statement hits close to home for many businesses.
ERP systems were less complex before the internet was commonplace. Until the mid-1990s, ERP systems were housed on mainframe computers in centralized locations, running business applications and data. Because of this, ERP security was less critical when all key systems were in on-premise environments. Firewalls weren’t common because there were few—if any—outside connections to ERP systems. Access controls and physical security were the two most important factors in establishing an IT security program. Overall, it was a simpler time for people working with SAP IT.
In this 2018 white paper from ASUG and Virtual Forge, we cover:
- How SAP attack surfaces have changed between 1997 and 2011
- Common customer beliefs about SAP application security
- How SAP application security concerns differ by job role
- How to address security in SAP systems